Vulnerabilities > Aweb Labs > Awebnews > 1.5

DATE	CVE	VULNERABILITY TITLE	RISK
2007-03-03	CVE-2007-1247	Code Injection vulnerability in Aweb Labs Awebnews 1.5 Multiple PHP remote file inclusion vulnerabilities in aWeb Labs aWebNews 1.5 allow remote attackers to execute arbitrary PHP code via a URL in the path_to_news parameter to (1) listing.php or (2) visview.php. network aweb-labs CWE-94	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.